CVE-2024-13249

CVE-2024-13249 affects Drupal’s Node Access Rebuild Progressive module (versions 7.X-1.0 through 7.X-1.2). The root cause is an improper ownership management vulnerability that enables target influence via framing, effectively an access-bypass risk. Documents label this as a less critical issue (...

CVE-2024-13246

CVE-2024-13246 concerns Drupal’s Node Access Rebuild Progressive module. The vulnerability stems from improper ownership management in the module, which can allow a remote attacker to bypass access controls and influence the target via framing. Affected versions are 0.0.0 through 2.0.1 (up to but...